7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
43.6%
The kernel-alt packages provide the Linux kernel version 4.x.
Security Fix(es):
kernel: Use-after-free in the vmacache_flush_all function resulting in a possible privilege escalation (CVE-2018-17182)
kernel: Privilege escalation on arm64 via KVM hypervisor (CVE-2018-18021)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
These updated kernel packages include also numerous bug fixes. Space precludes documenting all of the bug fixes in this advisory. See the descriptions in the related Knowledge Article: https://access.redhat.com/articles/3714391
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 7 | ppc64le | kernel-debug-devel | < 4.14.0-115.2.2.el7a | kernel-debug-devel-4.14.0-115.2.2.el7a.ppc64le.rpm |
RedHat | 7 | noarch | kernel-doc | < 4.14.0-115.2.2.el7a | kernel-doc-4.14.0-115.2.2.el7a.noarch.rpm |
RedHat | 7 | aarch64 | python-perf | < 4.14.0-115.2.2.el7a | python-perf-4.14.0-115.2.2.el7a.aarch64.rpm |
RedHat | 7 | s390x | kernel-debuginfo | < 4.14.0-115.2.2.el7a | kernel-debuginfo-4.14.0-115.2.2.el7a.s390x.rpm |
RedHat | 7 | s390x | python-perf | < 4.14.0-115.2.2.el7a | python-perf-4.14.0-115.2.2.el7a.s390x.rpm |
RedHat | 7 | s390x | kernel-debug-devel | < 4.14.0-115.2.2.el7a | kernel-debug-devel-4.14.0-115.2.2.el7a.s390x.rpm |
RedHat | 7 | s390x | python-perf-debuginfo | < 4.14.0-115.2.2.el7a | python-perf-debuginfo-4.14.0-115.2.2.el7a.s390x.rpm |
RedHat | 7 | aarch64 | perf-debuginfo | < 4.14.0-115.2.2.el7a | perf-debuginfo-4.14.0-115.2.2.el7a.aarch64.rpm |
RedHat | 7 | ppc64le | perf | < 4.14.0-115.2.2.el7a | perf-4.14.0-115.2.2.el7a.ppc64le.rpm |
RedHat | 7 | aarch64 | kernel-debug-devel | < 4.14.0-115.2.2.el7a | kernel-debug-devel-4.14.0-115.2.2.el7a.aarch64.rpm |
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
43.6%